summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* btcpayserver: 1.6.9 -> 1.6.10•••(cherry picked from commit 4ae959e94913a257ebf40255f6ddc7ca0eda4811) origin/backport-188571-to-release-22.05R. Ryantm2022-09-041-2/+2
* Merge pull request #189361 from NixOS/backport-180149-to-release-22.05•••[Backport release-22.05] nixos/gitlab: fix registry.issuer settingChristian Kögler2022-09-041-1/+1
|\
| * nixos/gitlab: fix registry.issuer setting•••Prior to this change, the configuration value for `services.gitlab.registry.issuer` was only referenced by the docker-registry configuration and in the `gitlab-registry-cert` service while the gitlab config used the hard-coded value "gitlab-issuer". (cherry picked from commit e2a322b3cdd8e851c6c9f9c744e307a2b9a1ce33) origin/backport-180149-to-release-22.05WilliButz2022-09-011-1/+1
* | Merge pull request #186904 from NixOS/backport-185833-to-release-22.05•••[Backport release-22.05] opentrack: 2.1.3 → 2022.3.0superherointj2022-09-041-44/+65
|\ \
| * | opentrack: 2.1.3 → 2022.3.0•••Fixes #185520 (cherry picked from commit f38a47d64a95881b889a7bbd91f61321ff84a856) origin/backport-185833-to-release-22.05Francesco Zanini2022-08-161-44/+65
* | | Merge pull request #189502 from NixOS/backport-189492-to-release-22.05Martin Weinelt2022-09-032-267/+267
|\ \ \
| * | | thunderbird*: 102.2.1 -> 102.2.2•••https://www.thunderbird.net/en-US/thunderbird/102.2.1/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2022-38/ (cherry picked from commit 935aa2d5fdfb15f4e237c4876fc9928f9d04024c) Vladimír Čunát2022-09-022-267/+267
* | | | Merge pull request #189604 from NixOS/backport-189592-to-release-22.05•••[Backport release-22.05] ungoogled-chromium: 105.0.5195.54 -> 105.0.5195.102Michael Weiss2022-09-031-5/+5
|\ \ \ \
| * | | | ungoogled-chromium: 105.0.5195.54 -> 105.0.5195.102•••(cherry picked from commit 82d8999e044ed542bc3d9bd90f4cd5bcd5ee1dfd) origin/backport-189592-to-release-22.05Michael Weiss2022-09-031-5/+5
|/ / / /
* | | | Merge pull request #186792 from rnhmjoj/pr-monero-back•••[22.05] monero-{cli,gui}: 0.17.3.2 -> 0.18.1.0Michele Guerini Rocco2022-09-038-17/+48
|\ \ \ \
| * | | | monero: 0.17.3.2 -> 0.18.1.0•••(cherry picked from commit 0ec615c46b67a1c300fce032fce433dfd2bc3ec3) Pavol Rusnak2022-08-151-3/+3
| * | | | monero-gui: 0.17.3.2 -> 0.18.1.0•••(cherry picked from commit 749e42f16d8fbaa1b5c814c4a7dc17b937d2f67d) Pavol Rusnak2022-08-151-5/+5
| * | | | randomx: 1.1.9 -> 1.1.10•••(cherry picked from commit bb202ec7218af0327d8b9b87758a96a35e1e6e7f) Stanisław Pitucha2022-08-152-3/+3
| * | | | hidapi: 0.11.2 -> 0.12.0•••(cherry picked from commit 20749fc886cf6ade0726d0ab51a6c08428e51c73) R. Ryantm2022-08-151-2/+2
| * | | | apple_sdk_11_0: fix build on x86_64-darwin and expose as attribute•••(cherry picked from commit d8f71776fffc7c98d82a58771b199a761d40cde1) Randy Eckenrode2022-08-152-3/+3
| * | | | apple_sdk_11_0: provide SDK-specific `callPackage`•••(cherry picked from commit 9659c7abcebb9fd36d0a8184681574268d8b9296) Randy Eckenrode2022-08-151-1/+15
| * | | | apple_sdk_11_0: expose 11.0 sdk stdenv as an attribute•••(cherry picked from commit 4741402d547773cc7d7f53814e65a3b81f23666c) Randy Eckenrode2022-08-151-0/+17
* | | | | Merge pull request #189524 from primeos/chromium-backport•••[22.05] chromium: 104.0.5112.101 -> 105.0.5195.102 + ungoogled-chromiumMichael Weiss2022-09-033-21/+59
|\ \ \ \ \
| * | | | | ungoogled-chromium: 104.0.5112.102 -> 105.0.5195.54•••(cherry picked from commit f9e02fa9452babef3c16cbff57a4e6ced2152206) Michael Weiss2022-09-032-8/+7
| * | | | | chromium: 105.0.5195.52 -> 105.0.5195.102•••https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop.html This update includes 1 security fix. Google is aware of reports that an exploit for CVE-2022-3075 exists in the wild. CVEs: CVE-2022-3075 (cherry picked from commit ac10e9551d3e06344946f8f01fc14159e17f486a) Michael Weiss2022-09-031-7/+7
| * | | | | chromium: Fix the build•••The build was failing with the following error: ``` [18950/51180] SOLINK ./libvk_swiftshader.sotls_transport_interface/dtls_transport_interface.omputils.o[K.otch.oos.oKx/unbundle:default)fault)ault) FAILED: libvk_swiftshader.so libvk_swiftshader.so.TOC python3 "../../build/toolchain/gcc_solink_wrapper.py" --readelf="readelf" --nm="nm" --sofile="./libvk_swiftshader.so" --tocfile="./libvk_swiftshader.so.TOC" --output="./libvk_swiftshader.so" -- clang++ -shared -Wl,-soname="libvk_swiftshader.so" -Wl,-Bsymbolic -Wl,--version-script=../../third_party/swiftshader/src/Vulkan/vk_swiftshader.lds -fuse-ld=lld -Wl,--fatal-warnings -Wl,--build-id=sha1 -fPIC -Wl,-z,noexecstack -Wl,-z,relro -Wl,-z,now -Wl,--icf=all -Wl,--color-diagnostics -Wl,-mllvm,-instcombine-lower-dbg-declare=0 -flto=thin -Wl,--thinlto-jobs=all -Wl,--thinlto-cache-dir=thinlto-cache -Wl,--thinlto-cache-policy=cache_size=10\%:cache_size_bytes=40g:cache_size_files=100000 -Wl,-mllvm,-import-instr-limit=30 -fwhole-program-vtables -Wl,--no-call-graph-profile-sort -m64 -no-canonical-prefixes -Wl,-O2 -Wl,--gc-sections -rdynamic -Wl,-z,defs -Wl,--as-needed -nostdlib++ -Wl,--lto-O0 -fsanitize=cfi-vcall -fsanitize=cfi-icall -o "./libvk_swiftshader.so" @"./libvk_swiftshader.so.rsp" ld.lld: error: unable to find library -l:libffi_pic.a clang++: error: linker command failed with exit code 1 (use -v to see invocation) ``` This turned out to be a regression from b6b51374fc7. That change was bad/undesirable in the first place and I only applied it to quickly fix another build error caused by incompatible wayland-protocols header files from a newer system version (Chromium bundles version 1.21 while we already package 1.26). The better fix for that wayland-protocols build issue is to pull in a patch that is already used/tested by the Arch package [0] and seems to originate from [1] (not sure if that patch was formally submitted yet). Alternatives to that patch would be to (we should probably first try the first approach if need be): 1) Build with wayland-protocols 1.21 from the system (by overriding the Nixpkgs package). 2) Dynamically link against libffi by patching [2] to use the other branch (`default_toolchain == "//build/toolchain/cros:target"`). Some additional details can be found in the GitHub PR [3]. Huge thanks to Lorenz Brun for his great analysis that enabled me to fix the build so that we can finally merge the update to Chromium M105 (which contains many important security fixes!). [0]: https://github.com/archlinux/svntogit-packages/commit/a353833a5a731abfaa465b658f61894a516aa49b [1]: https://bugs.chromium.org/p/angleproject/issues/detail?id=7582#c1 [2]: https://source.chromium.org/chromium/chromium/src/+/refs/tags/105.0.5195.52:build/config/linux/libffi/BUILD.gn [3]: https://github.com/NixOS/nixpkgs/pull/189033 Co-Authored-By: Lorenz Brun <lorenz@brun.one> (cherry picked from commit d932886d6ea5b4e5bf07247e54c29f77b9b69a20) Michael Weiss2022-09-032-4/+43
| * | | | | chromium: 104.0.5112.101 -> 105.0.5195.52•••https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html This update includes 24 security fixes. CVEs: CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042 CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3047 CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052 CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057 CVE-2022-3058 (cherry picked from commit 360844281a45dc6eb17168e5330c4bfd2df73ebc) Michael Weiss2022-09-031-10/+10
* | | | | | Merge pull request #189239 from Ma27/element-web-update-22.05•••[22.05] element-{web,desktop}: 1.11.0 -> 1.11.4, fix CVE-2022-36059 & CVE-2022-36060Jonas Heinrich2022-09-033-10/+19
|\ \ \ \ \ \
| * | | | | | element-desktop: work around broken resolutionsMaximilian Bosch2022-09-011-0/+2
| * | | | | | element-{web,desktop}: 1.11.0 -> 1.11.4, fix CVE-2022-36059 & CVE-2022-36060•••Backport of #189150, #186133. Maximilian Bosch2022-09-012-10/+17
* | | | | | | rustup: also patch binaries in libexec•••fixes https://github.com/NixOS/nixpkgs/issues/186052 (cherry picked from commit 56a690d7fb6d0ea98e67ed4ee0113d4f7ca17f54) Jörg Thalheim2022-09-031-5/+5
* | | | | | | Merge pull request #189545 from NixOS/backport-187968-to-release-22.05•••[Backport release-22.05] emacs: Enable xinput2 on version 29 and neweradisbladis2022-09-031-9/+4
|\ \ \ \ \ \ \ | |_|/ / / / / |/| | | | | |
| * | | | | | emacs: Enable xinput2 on version 29 and newer•••(cherry picked from commit ca25a9c7b2025deafaab976912117e1ca31fc061) adisbladis2022-09-031-1/+1
| * | | | | | emacs: Simplify patchelf invocation when building with lucid•••(cherry picked from commit 73c90badf31492c8cf67745d46de277321b4712a) adisbladis2022-09-031-8/+3
|/ / / / / /
* | | | | | Merge pull request #189520 from primeos/chromium-backport•••[22.05] Prepare for backporting Chromium M105Michael Weiss2022-09-034-18/+25
|\ \ \ \ \ \ | |_|_|/ / / |/| | | | |
| * | | | | chromium: add commandLineArgs after wayland flags (#189371)•••(cherry picked from commit d32eae0f230f5713c254b08edf91f1571c4f73a2) Stefan Radziuk2022-09-031-2/+2
| * | | | | google-chrome: add commandLineArgs after wayland flags (#189199)•••(cherry picked from commit 1be806f07f1393fabe37badb3ff66fe17058e7b6) Stefan Radziuk2022-09-031-2/+2
| * | | | | chromiumDev: 106.0.5245.0 -> 106.0.5249.12•••(cherry picked from commit 50e7538f3e57eaa3ebd8778903204ef39b7d8129) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumBeta: Fix errors due to incompatible Wayland headers•••This "fixes" errors like these: ``` FAILED: obj/third_party/angle/angle_gpu_info_util/SystemInfo_vulkan.o [...] In file included from ../../third_party/wayland/src/src/wayland-client.h:40: /nix/store/an42rhwn6ck2nix6caikrr4rvizknjhh-wayland-1.21.0-dev/include/wayland-client-protocol.h:1040:13: error: use of undeclared identifier 'wl_proxy_marshal_flags' callback = wl_proxy_marshal_flags((struct wl_proxy *) wl_display, ^ [...] /nix/store/an42rhwn6ck2nix6caikrr4rvizknjhh-wayland-1.21.0-dev/include/wayland-client-protocol.h:1392:87: error: use of undeclared identifier 'WL_MARSHAL_FLAG_DESTROY' WL_SHM_POOL_DESTROY, NULL, wl_proxy_get_version((struct wl_proxy *) wl_shm_pool), WL_MARSHAL_FLAG_DESTROY); ^ [...] fatal error: too many errors emitted, stopping now [-ferror-limit=] ``` At least for now (until Chromium updates their bundled Wayland version) it seems best to use the bundled headers/versions to avoid version incompatibility issues (we should hopefully be able to drop use_system_wayland_scanner though). (cherry picked from commit b6b51374fc7508aa4f3d90d24653fbc01ec3d1b3) Michael Weiss2022-09-031-0/+4
| * | | | | chromiumBeta: 105.0.5195.37 -> 105.0.5195.52•••(cherry picked from commit a5cb5ba44a2cb3ffc0649f7147aec7e228d68b9e) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumDev: 106.0.5231.2 -> 106.0.5245.0•••(cherry picked from commit 872ca61379acdd98eb46391969d46901ece9ea77) Michael Weiss2022-09-031-6/+6
| * | | | | chromiumBeta: 105.0.5195.28 -> 105.0.5195.37•••(cherry picked from commit d0bbad1246388649ab824261abeee1012dff51b2) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumDev: 106.0.5216.6 -> 106.0.5231.2•••(cherry picked from commit 0e03ad366a4a07354a7a09866fd0b2d8a524a1f0) Michael Weiss2022-09-031-6/+6
| * | | | | chromiumBeta: 105.0.5195.19 -> 105.0.5195.28•••(cherry picked from commit 61063f32767364f1b9c8c7c51a24b1a50d2fee1d) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumDev: 105.0.5195.19 -> 106.0.5216.6•••(cherry picked from commit 22eae24df0986d32c1f9658bf8498241309697c4) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumBeta: 104.0.5112.79 -> 105.0.5195.19•••(cherry picked from commit a43bf95ad00bd02311a30c1a102f5a221641d637) Michael Weiss2022-09-031-6/+6
| * | | | | chromiumDev: 105.0.5195.10 -> 105.0.5195.19•••(cherry picked from commit 201eb18f4d5236b00234f2207424bdba59194444) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumBeta: 104.0.5112.65 -> 104.0.5112.79•••(cherry picked from commit 8ce54794cc8ea2540b38dda928def26816a7a0be) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumDev: 105.0.5191.2 -> 105.0.5195.10•••(cherry picked from commit b746ec744631bee0cc2a0f37884ce698089d4dba) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumBeta: 104.0.5112.57 -> 104.0.5112.65•••(cherry picked from commit 5af51045018bdb0d8d81026df53d7dec22049c01) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumDev: 105.0.5176.3 -> 105.0.5191.2•••(cherry picked from commit 92bb481cd710e367cf3b7efa8fe54dc112f9dd83) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumBeta: 104.0.5112.48 -> 104.0.5112.57•••(cherry picked from commit 9e393ee5dd54dc2d86118875d1d1efd7238eee2f) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumDev: 105.0.5148.2 -> 105.0.5176.3•••(cherry picked from commit ddf49ce022c61a78eac1db553f6e0b555fbe9c92) Michael Weiss2022-09-031-6/+6
| * | | | | chromiumBeta: 104.0.5112.39 -> 104.0.5112.48•••(cherry picked from commit 41a5ec97d586dc4e7fe578193a7a188c049518b4) Michael Weiss2022-09-031-3/+3
| * | | | | chromiumBeta: 104.0.5112.29 -> 104.0.5112.39•••(cherry picked from commit 8d73ee918766ada5c2caed6cf4aeac310ae45f88) Michael Weiss2022-09-031-3/+3
generated by cgit v1.2.3 (git 2.52.0) at 2026-01-17 05:23:07 +0000